Analyze Network Traffic - Zeek | Online Free DevTools by Hexmos
Analyze network traffic passively with Zeek. Extract network metadata, perform security monitoring and gain insights with this powerful command-line tool. Free online tool, no registration required.
zeek
Passive network traffic analyzer. Any output and log files will be saved to the current working directory. More information: https://docs.zeek.org/en/lts/quickstart.html#zeek-as-a-command-line-utility.
- Analyze live traffic from a network interface:
sudo zeek --iface {{interface}}
- Analyze live traffic from a network interface and load custom scripts:
sudo zeek --iface {{interface}} {{script1 script2 ...}}
- Analyze live traffic from a network interface, without loading any scripts:
sudo zeek --bare-mode --iface {{interface}}
- Analyze live traffic from a network interface, applying a
tcpdumpfilter:
sudo zeek --filter {{path/to/filter}} --iface {{interface}}
- Analyze live traffic from a network interface using a watchdog timer:
sudo zeek --watchdog --iface {{interface}}
- Analyze traffic from a PCAP file:
zeek --readfile {{path/to/file.trace}}